OVAL Reference oval:com.ubuntu.xenial:def:20166796000

Oval Definition:

oval:com.ubuntu.xenial:def:20166796000

Revision Date:	2017-08-10	Version:	1
Title:	CVE-2016-6796 on Ubuntu 16.04 LTS (xenial) - low.
Description:	A malicious web application running on Apache Tomcat 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 to 8.0.36, 7.0.0 to 7.0.70 and 6.0.0 to 6.0.45 was able to bypass a configured SecurityManager via manipulation of the configuration parameters for the JSP Servlet.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-6796
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The 'tomcat6' package in xenial is affected and needs fixing. OR The 'tomcat7' package in xenial was vulnerable but has been fixed (note: '7.0.68-1ubuntu0.3'). OR The 'tomcat8' package in xenial was vulnerable but has been fixed (note: '8.0.32-1ubuntu1.3').